vidar | c69d2912adefb602278cc23d8551c9f5f7821f3ae93e68a09560f20f0fdf7055 | Triage

Submit
Reports

Overview

overview

Static

static

3

70ac5b7449...18.exe

windows7-x64

70ac5b7449...18.exe

windows10-2004-x64

Sharing

General

Target

70ac5b74495a90287bc75716f82f5ff6_JaffaCakes118
Size

721KB
Sample

240401-ngtjdsda4w
MD5

70ac5b74495a90287bc75716f82f5ff6
SHA1

d0a457c527eb87de6304829e6f3b37c53afa6c2b
SHA256

c69d2912adefb602278cc23d8551c9f5f7821f3ae93e68a09560f20f0fdf7055
SHA512

2b24396dc4c7dd7e9535897b5fb928ca541e06c6d5d23731b426bbbf858e95d1f2de59371f378d3e4e31ddead72efd32abff0de795b5d55708047afe2f0c2cb9
SSDEEP

12288:7c6gCtpSDJOQXnYyOV16WXlED0kPYjUFMoyQOHQhBdo0HTwZGEX8cA0/M:TxpKO0Q6ClE9PYjUC5QTh0NsEv

Score

10^/10

vidar 916 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

70ac5b74495a90287bc75716f82f5ff6_JaffaCakes118.exe

Resource

win7-20240215-en

vidar 916 stealer

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

70ac5b74495a90287bc75716f82f5ff6_JaffaCakes118.exe

Resource

win10v2004-20240226-en

vidar 916 stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

41.5

Botnet

916

C2

https://mas.to/@xeroxxx

Attributes

profile_id
916

Targets

- Target
  
  70ac5b74495a90287bc75716f82f5ff6_JaffaCakes118
- Size
  
  721KB
- MD5
  
  70ac5b74495a90287bc75716f82f5ff6
- SHA1
  
  d0a457c527eb87de6304829e6f3b37c53afa6c2b
- SHA256
  
  c69d2912adefb602278cc23d8551c9f5f7821f3ae93e68a09560f20f0fdf7055
- SHA512
  
  2b24396dc4c7dd7e9535897b5fb928ca541e06c6d5d23731b426bbbf858e95d1f2de59371f378d3e4e31ddead72efd32abff0de795b5d55708047afe2f0c2cb9
- SSDEEP
  
  12288:7c6gCtpSDJOQXnYyOV16WXlED0kPYjUFMoyQOHQhBdo0HTwZGEX8cA0/M:TxpKO0Q6ClE9PYjUC5QTh0NsEv
Score

10^/10

vidar 916 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

vidar916stealer

behavioral2

vidar916stealer

© 2018-2024

Terms | Privacy